New User, Welcome!     Login

Hellcode Research

Hellcode Research: OpenOffice File Parsing Null Pointer Vulnerability

Vulnerability:
Null Pointer


Description:
Hellcode Research discovered a null pointer vulnerability in Openoffice for Windows.

Opening a malformed ".csv" file with Openoffice, causes a crash on "soffice.bin"


PoC:

[Hellcode Research]: AOL 9.5 File Parsing Buffer Overflow Vulnerability

File Parsing Heap-based Buffer Overflow

Description:

Hellcode Research has discovered a heap overflow vulnerability in AOL 9.5
Opening a malformed vCard file (.vcf) with AOL 9.5 causes a crash on "waol.exe"
Successful exploitation may allow execution of arbitrary code.

Credits:

OpenOffice for Windows ".slk" File Parsing Null Pointer Vulnerability

Null Pointer

Description:

Hellcode Research discovered a null pointer vulnerability in Openoffice for
Windows.

Opening a malformed ".slk" file with Openoffice, causes a crash on "soffice.bin"

Novell eDirectory 8.8 SP5 Dhost Http Server DoS

If a remote attacker sends Unicode strings with Http Request to "8028 port" 
("8028" is the default port of Novell eDirectory Dhost Http Server), 
the attacker can cause the system to consume 100% of the CPU resources.

Credits to:
Hellcode Research

Original Advisory: 
http://tcc.hellcode.net/advisories/hellcode-adv003.txt

Exploit:

Hellcode Research: Novell eDirectory HTTPSTK Login Stack Overflow Vulnerability

035ef964: ntdll!RtlRaiseStatus+c8 (77569bad)
035eff34: 41414141
Invalid exception stack at 41414141

Credit to:
karak0rsan and murderkey from Hellcode Research
www.hellcode.net

Proof of Concept:

http://tcc.hellcode.net/sploitz/httpstk.txt

AOL 9.5 ActiveX Heap Overflow Vulnerability

eip=10033011 esp=0020cdac ebp=0020ed20 iopl=0         nv up ei pl zr na pe nc

Credits:

Celil 'karak0rsan' Unuver and murderkey
from Hellcode Research

tcc.hellcode.net
forum.hellcode.net

PoC and Original Advisory:

Microsoft Wordpad Memory Exhaustion (msftedit)

Solution:
There is not a patch. Do not open untrusted files.

Credits:
Discovered by murderkey, Hellcode Research.


Exploit: http://www.hellcode.net/wordpad.txt

Novell eDirectory 8.8 SP5 for Windows - Buffer Overflow Vulnerability

http://tcc.hellcode.net/advisories/hellcode-adv004.txt

Credit to:

Hellcode Research
karak0rsan , murderkey

[HACKATTACK Advisory 080110] Windows Live Messenger 2009 ActiveX DoS Vulnerability

================
HACKATTACK IT SECURITY GmbH is a Penetrationtest and Security Auditing company located in Germany and Austria
More Information about HACKATTACK at
http://www.hackattack.com

Natal Networks was founded by Hellcode Research Team in 2009.
Main mission of Natal Network is discover and research vulnerabilities.
Providing penetration tests and security auditing services.
More about; www.natalnetworks.com


Copyright © 1995-2012 LinuxRocket.net. All rights reserved.

Nearly all of LinuxRocket's features are free. Be kind and donate to the cause!